Two critical n8n flaws (CVSS 9.4, 9.5) enable RCE via expression sandbox escape and public forms, risking credential exposure ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies on Wednesday to patch their systems against an actively exploited n8n vulnerability.

Fortinet, Ivanti, and Intel have released fixes for dozens of vulnerabilities, including high-severity bugs leading to code execution.

Google may allow users to disable WebGPU in Chrome via Android Advanced Protection Mode to shield users from sophisticated online attacks.

GPT-5.4 seems to blend these lineages. Early benchmarks suggest it maintains Codex-level coding reliability while incorporating stronger planning capabilities. For OpenClaw agents that need to both ...

WatchGuard has warned customers to patch a critical, actively exploited remote code execution (RCE) vulnerability in its Firebox firewalls. Tracked as CVE-2025-14733, this security flaw affects ...

SAP released 15 new security notes on its March 2026 Security Patch Day, including two that resolve critical vulnerabilities ...

Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction ...

A new report out today from artificial intelligence security startup Cyata Security Ltd. details a critical remote code execution vulnerability in Cursor Inc.’s integrated development environment that ...

A critical sandbox escape vulnerability in Grist-Core has been disclosed that allows remote code execution (RCE) through a single malicious spreadsheet formula. The issue was uncovered by Cyera ...

Agent skills shift AI agents toward procedural tasks with skill.md steps; progressive disclosure reduces context window bloat in real use.